Hackers have defaced multiple websites belonging to the Ukrainian government after talks between Ukrainian, US, and Russian officials hit a dead end on Thursday.
The attack took place on the night between January 13 and January 14 and impacted the websites of the Ukrainian Ministry of Foreign Affairs, Ministry of Education and Science, Ministry of Defense, the State Emergency Service, the website for the Cabinet of Ministers, and others.
All websites were wiped, and their content was replaced with the same statement published in Russian, Ukrainian, and Polish (image at the top of this article, a rough translation below, archived copy here).
Ukrainian! All your personal data has been sent to a public network. All data on your computer is destroyed and cannot be recovered. All information about you stab (public, fairy tale and wait for the worst. It is for you for your past, the future and the future. For Volhynia, OUN UPA, Galicia, Poland and historical areas.
Ukrainian officials have confirmed the attack in messages posted on Facebook and Twitter, and all affected websites were taken down. Some are still down, under maintenance messages, while some have been restored.
Officials say they are investigating the attacks, but all signs post to an attack carried out by Russian hackers.
Cybersecurity journalist Kim Zetter said today that sources in the Ukrainian government told her that the attack leveraged a vulnerability in the October CMS, shared among all the defaced websites, although officials have yet to confirm any of the technical details from the attack.
Sources tell me ~15 sites in Ukraine – all using October content management system – have been defaced, incl Min of Foreign Affairs, Cabinet of Ministers, Min of Ed, Emergency Services, Treasury, Environmental Protection. Attackers apparently used this: https://t.co/7ojWbjZWDd pic.twitter.com/FaepCsRO5E— Kim Zetter (@KimZetter) January 14, 2022